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1.What must be configured on Transport Nodes for encapsulation and decapsulation of Geneve protocol? 
A. VXIAN 

B. UDP 

C. STT 

D. TEP 

Answer: D 

Explanation: 

According to the VMware NSX Documentation, TEP stands for Tunnel End Point and is a logical interface 
that must be configured on transport nodes for encapsulation and decapsulation of Geneve protocol. 
Geneve is a tunneling protocol that encapsulates the original packet with an outer header that contains 
metadata such as the virtual network identifier (VNI) and the transport node IP address. TEPs are 
responsible for adding and removing the Geneve header as the packet traverses the overlay network. 


2.Refer to the exhibits. 
Drag and drop the NSX graphic element icons on the left found in an NSX Intelligence visualization graph 
to Its correct description on the right. 

Answer Area 


This icon represents a physical server that is part 
of your NSX environment, A physical server can 
belong to more than one group 


This icon represents a group on which security 
policies, Including East-West firewall rules, can 
be applied. A group can be a collection of VMs, 
physical servers, or sets of IP addresses 


This is the icon for the public IP addresses on the 
Internet. If at least one compute entity in 

your NSX environment communicated with a 
public IP address during the selected time 
period, that traffic flow is included in the current 
visualization 


This is the icon used for a virtual machine (VM) 
that is part of your NSX environment. A VM can 
belong to more than one group 


Answer: 
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Auswer Area 


This icon represents a physical server that is part 
of your NSX environment, A physical server can 
belong to more than one group 


This icon represents a group on which security 
policies, Including East-West firewall rules, can 
be applied. A group can be a collection of VMs, 
physical servers, or sets of IP addresses 


This is the icon for the public IP addresses on the 
Internet. If at least one compute entity in 

your NSX environment communicated with a 
public IP address during the selected time 
period, that traffic flow is included in the current 
visualization 


This is the icon used for a virtual machine (VM) 
that is part of your NSX environment. A VM can 
belong to more than one group 


3.Where does an administrator configure the VLANs used In VRF Lite? (Choose two.) 

A. segment connected to the Tler-1 gateway 

B. uplink trunk segment 

C. downlink interface of the default Tier-O gateway 

D. uplink Interface of the VRF gateway 

E. uplink interface of the default Tier-O gateway 

Answer: B D 

Explanation: 

According to the VMware NSX Documentation, these are the two places where you need to configure the 
VLANs used in VRF Lite: 

- Uplink trunk segment: This is a segment that connects a tier-0 gateway to a physical network using 
multiple VLAN tags. You need to configure the VLAN IDs for each VRF on this segment. 

- Uplink interface of the VRF gateway: This is an interface that connects a VRF gateway to an uplink trunk 
segment using a specific VLAN tag. You need to configure the VLAN ID for each VRF on this interface. 


4.Which VMware GUI tool is used to identify problems in a physical network? 
A. VMware Aria Automation 

B. VMware Aria Orchestrator 

C. VMware Site Recovery Manager 

D. VMware Aria Operations Networks 

Answer: D 
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Explanation: 

According to the web search results, VMware Aria Operations Networks (formerly vRealize Network 
Insight) 

is a network monitoring tool that can help monitor, discover and analyze networks and applications across 
clouds1. It can also provide enhanced troubleshooting and visibility for physical and virtual networks2. 
The other options are either incorrect or not relevant for identifying problems in a physical network. 
VMware Aria Automation is a cloud automation platform that can help automate the delivery of IT services. 
VMware Aria Orchestrator is a cloud orchestration tool that can help automate workflows and integrate 
with other systems. VMware Site Recovery Manager is a disaster recovery solution that can help protect 
and recover virtual machines from site failures. 


5.Refer to the exhibit. 

An administrator configured NSX Advanced Load Balancer to redistribute the traffic between the web 
servers. 

However, requests are sent to only one server 

Which of the following pool configuration settings needs to be adjusted to resolve the problem? Mark the 
correct answer by clicking on the image. 


EDIT POOL 


web-pool 


General 


Enable Pool G 


Name* Ç 


web-pool 


Description Q 


Default Server Port G 


80 


Load Balance Algorithm G 


Answer: 
Load Balancing Algorithm 


6.Which three DHCP Services are supported by NSX? (Choose three.) 
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A. Gateway DHCP 

B. Port DHCP per VNF 

C. Segment DHCP 

D. VRF DHCP Server 

E. DHCP Relay 

Answer: ACE 

Explanation: 

According to the VMware NSX Documentation1, NSX-T Data Center supports the following types of 
DHCP configuration on a segment: 

- Local DHCP server: This option creates a local DHCP server that has an IP address on the segment and 
provides dynamic IP assignment service only to the VMs that are attached to the segment. 

- Gateway DHCP server: This option is attached to a tier-0 or tier-1 gateway and provides DHCP service 
to the networks (overlay segments) that are directly connected to the gateway and configured to use a 
gateway DHCP server. 

- DHCP Relay: This option relays the DHCP client requests to the external DHCP servers that can be in 
any subnet, outside the SDDC, or in the physical network. 


7.When collecting support bundles through NSX Manager, which files should be excluded for potentially 
containing sensitive information? 

A. Controller Files 

B. Management Files 

C. Core Files 

D. Audit Files 

Answer: C D 

Explanation: 

According to the VMware NSX Documentation1, core files and audit logs can contain sensitive 
information and should be excluded from the support bundle unless requested by VMware technical 
support. Controller files and management files are not mentioned as containing sensitive information. 


8.What are two valid BGP Attributes that can be used to influence the route path traffic will take? (Choose 
two.) 

A. AS-Path Prepend 

B. BFD 

C. Cost 

D. MED 

Answer: A D 

Explanation: 

- AS-Path Prepend: This attribute allows you to prepend one or more AS numbers to the AS path of a 
route, making it appear longer and less preferable to other BGP routers. You can use this attribute to 
manipulate the inbound traffic from your BGP peers by advertising a longer AS path for some routes and a 
shorter AS path for others. 

- MED: This attribute stands for Multi-Exit Discriminator and allows you to specify a preference value for a 
route among multiple exit points from an AS. You can use this attribute to manipulate the outbound traffic 
to your BGP peers by advertising a lower MED value for some routes and a higher MED value for others. 
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9.An NSX administrator is creating a Tier-1 Gateway configured In Active-Standby High Availability Mode. 
In the event of node failure, the failover policy should not allow the original tailed node to become the 
Active node upon recovery. 

Which failover policy meets this requirement? 

A. Non-Preemptive 

B. Preemptive 

C. Enable Preemptive 

D. Disable Preemptive 

Answer: A 

Explanation: 

According to the VMware NSX Documentation, a non-preemptive failover policy means that the original 
failed node will not become the active node upon recovery, unless the current active node fails again. This 
policy can help avoid unnecessary failovers and ensure stability. 

The other options are either incorrect or not available for this configuration. Preemptive is the opposite of 
non-preemptive, meaning that the original failed node will become the active node upon recovery, if it has 
a higher priority than the current active node. Enable Preemptive and Disable Preemptive are not valid 
options for the failover policy, as the failover policy is a drop-down menu that only has two choices: 
Preemptive and Non-Preemptive. 


